Virusign
Info

Details for 2354e7c8f34ad9d20656d12f3f81d3257767aae324da0dd2980a264b685dc14b

Nameconhost.exe
Date (Y-m-d)2018-01-17
Size (Bytes)673792 (658KB)
FilePE32 executable (GUI) Intel 80386, for MS Windows
TrID42.2% (.EXE) Win32 Executable MS Visual C++ (generic) (31206/45/13)
37.3% (.EXE) Win64 Executable (generic) (27625/18/4)
8.8% (.DLL) Win32 Dynamic Link Library (generic) (6578/25/2)
6.0% (.EXE) Win32 Executable (generic) (4508/7/1)
2.7% (.EXE) Generic Win/DOS Executable (2002/3)
CRC32c5b1bbae
MD5115f1fe999210dd8428fc219c16a8b5a
SHA10cc1b37555cf2dfcd48d4db69621ef99cc4f06f7
SHA2562354e7c8f34ad9d20656d12f3f81d3257767aae324da0dd2980a264b685dc14b
ImpHash81579814d6ab7ca5cfb7290edd01c38a
ImpFuzzy24:/zyXyAgcATcDoPBBkWXf5QRzBuKmIA5okKa:ryXF05XqhkK2ma
SSDeep12288:DzEB7yi84pUHYtKFm/lXvsMi0IvVVWbrz5rDO350wC2TexDf:MBeLqtKFm/lX8vVVWbfBDO35LtTe
Online Analysis 1x
Online Analysis 2x
Online Analysis 3http://sarvam.ece.ucsb.edu/analysis/115f1fe999210dd8428fc219c16a8b5a
AV1 (ClamAV) StatusNo detection
AV2 AV3 AV4 AV5 AV6 AV7 StatusDetected on 2018-01-17
AV1 DetectionOK
AV1 Virus Signatures VersionClamAV 0.99.4/24588/Sun May 20 20:34:21 2018 (2018-05-21)
AV2 DetectionPUA.CoinMiner
AV2 Virus Signatures VersionVDB: 10.12.2017 19:08:45 (Build: 99992) (2017-12-11)
AV3 DetectionWin32:PUP-gen [PUP]
AV3 Virus Signatures Version18011604 (2018-01-17)
AV4 DetectionWin32/DH{Pg}
AV4 Virus Signatures Version4793/15322 Tue, 16 Jan 2018 14:00:00 +0000 (2018-01-17)
AV5 DetectionW32/CoinMiner.G.gen!Eldorado
AV5 Virus Signatures Version201801171102 (2018-01-17)
AV6 DetectionTroj/Miner-FA
AV6 Virus Signatures Version5.47 09 January 2018 (2018-01-17)
AV7 DetectionGen:Variant.Razy.222881(DB)
AV7 Virus Signatures Version7.74650 (2018-01-17)